Splunk Security Information and Event Management (SIEM) Security Architect

About Accenture: Accenture is a global professional services company with leading capabilities in digital, cloud and security. Combining unmatched experience and specialized skills across more than 40 industries, we offer Strategy and Consulting, Interactive, Technology and Operations services-all powered by the world's largest network of Advanced Technology and Intelligent Operations centers. Our 514,000 people deliver on the promise of technology and human ingenuity every day, serving clients in more than 120 countries. We embrace the power of change to create value and shared success for our clients, people, shareholders, partners and communities. Visit us at www.accenture.com
Accenture | Let there be change
We embrace change to create 360-degree value
www.accenture.com

• 
  
• Project Role :Security Architect
• Project Role Description :Define the security architecture, ensuring that it meets the business requirements and performance goals.
• Management Level :10
• Work Experience :4-6 years
• Work location :Bengaluru
• Must Have Skills :Splunk Security Information and Event Management (SIEM)
• Good To Have Skills :Security Information and Event Management (SIEM) Operations
• Job Requirements :
  • 
    
  • Key Responsibilities : 1 Performs deep-dive incident analysis by correlating data from various sources; determines if a critical system or data set has been impacted; advises on remediation; 2 Verify and Troubleshoot Parsing issues Manage health status for SIEM Splunk ES components 3 Install, configuration troubleshooting of SIEM Splunk ES components and Preparing log baseline configuration documents 4 Whitelisting use case fine tuning 5 Maintain asset inventory troubleshoot the interruptions in log collection
    
  • Technical Experience : 1 3-5 years of experience in incident response, blue team member or experience working on a CERT team 2 Knowledge of Cloud, Network Security, End point Security 3 Sound knowledge of Splunk ES application with minimum 2-3 years of exp 4 Install, configuration troubleshooting of SIEM components 5 Preparing log baseline configuration documents 6 Whitelisting use case fine tuning 7 Reporting and Client interactions
    
  • Professional Attributes : 6 Creation of process documentation SOPs 7 Report creation validation 8 RCA preparation Escalating verified high priority incidents to L3
    
  • Educational Qualification : Graduate
    
  • Additional Information : Having certifications such as Security, CompTIA, GCIH, GCIA, etc

15 years of full time education